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DETAILED ACTION 
Response to Amendment 
This is a Final Office Action in response to Applicants Amendment/Request for Reconsideration 
filed on July 3 1 , 2006. Claims 1 1 , 42, 49 and 58 have been amended. Claims 1 1 -69 are 
presented for further examination. 

Claim Rejections - 35 USC §103 

1 . The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

2. Claims 11-24, 26-37, 39-40, 42-56 and 58-69 is rejected under 35 U.S.C. 103(a) as being 
unpatentable over Geiger in view of Newton (U.S. Pub. No. 2003/0035547). 

As per claim 11, Geiger discloses a method comprising: 

• obtaining a first domain name provided by a client (col. 13, lines 14-22); 

• retrieving a second domain name from a digital certificate (col. 13, lines 27-43); 

• comparing the first domain name and the second domain name (col. 18, lines 45- 
63); and. 

However, Geiger does not explicitly disclose: 
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• accessing a data structure to determine whether the first domain name is mapped to 
the second domain name if the first domain name and the second domain name do 
not match. 

Newton discloses a system, method and computer program product are provided for 
utilizing encrypter hardware with a server comprising: 

• accessing a data structure to determine whether the first domain name is mapped to 
the second domain name if the first domain name and the second domain name do 
not match (paragraphs 0113-01 14 and 0127-0128). 

Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Geiger by incorporating a table with a list of trusted CA 
certificates to determine which server certificates the client will accept in a timely and efficient 
manner. 

As per claim 27, Geiger discloses a method comprising: 

• obtaining a first domain name transmitted by a mobile device, the mobile device 
connected to a wireless network (col. 13, lines 14-22); 

• retrieving a second domain name from a digital certificate transmitted by a secure 
server, the secure server located on a wired network, the wired network is coupled 
to the wireless network (col. 13, lines 27-43); 

• comparing the first domain name and the second domain name (col. 1 8, lines 45- 
63); and 

However, Geiger does not explicitly disclose: 
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• accessing a data structure if the first domain name and the second domain name do 
not match, the data structure comprising at least one domain name not matching to 
the first domain name, the at least one domain name corresponding to the first 
domain name and if present in the digital certificate indicates that the digital 
certificate was transmitted by a server referenced by the first domain name. 

Newton discloses a system, method and computer program product are provided for 
utilizing encrypter hardware with a server comprising: 

• accessing a data structure if the first domain name and the second domain name do 
not match, the data structure comprising at least one domain name not matching to 
the first domain name, the at least one domain name corresponding to the first 
domain name and if present in the digital certificate indicates that the digital 
certificate was transmitted by a server referenced by the first domain name 
(paragraphs 01 13-01 14 and 0127-0128). 

Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Geiger by incorporating a table with a list of trusted CA 
certificates to determine which server certificates the client will accept in a timely and efficient 
manner. 

As per claim 39, Geiger discloses a method comprising: 

• obtaining a first domain name transmitted by a mobile device, the mobile device 
connected to a wireless network (col. 13, lines 14-22); 



Application/Control Number: 10/086,490 Page 5 

Art Unit: 2157 

• retrieving a second domain name from a digital certificate transmitted by a secure 
server, the secure server located on a wired network, the wired network is coupled 
to the wireless network by a proxy gateway (col. 13, lines 27-43); 

• using a proxy gateway to compare the first domain name and the second domain 
name (col. 1 1, lines 29-38); 

• searching the first field for a domain name matching the first domain name and 
searching the second field for a domain name matching the second domain name, 
the domain name from the second field corresponding to the domain name from 
the first field, a matching of domain name in the second field to the second 
domain name indicating that the digital certificate was transmitted by a server 
referenced by the first domain name (col. 18, lines 45-63); and 

• allowing the mobile device to access contents of the server if the domain name 
from the second field matches the second domain name (col. 18, lines 45-63). 

However, Geiger does not explicitly disclose: 

• using the proxy gateway to access a mapping table if the first domain name and the 
second domain name do not match, the mapping table located on the proxy 
gateway and comprising at least two fields, a second field of the at least two fields 
comprising at least one domain name corresponding to a domain name in a first 
field of the at least two fields. 
Newton discloses a system, method and computer program product are provided for 
utilizing encrypter hardware with a server comprising: 
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• using the proxy gateway to access a mapping table if the first domain name and the 
second domain name do not match, the mapping table located on the proxy 
gateway and comprising at least two fields, a second field of the at least two fields 
comprising at least one domain name corresponding to a domain name in a first 
field of the at least two fields (paragraphs 0113-0114 and 0127-0128). 

Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Geiger by incorporating a table with a list of trusted CA 
certificates to determine which server certificates the client will accept in a timely and efficient 
manner. 

As per claim 49, Geiger discloses an apparatus comprising: 

• means for obtaining a first domain name provided by a client (col. 1 3, lines 14- 
22); 

• means for retrieving a second domain name from a digital certificate (col. 13, 
lines 14-22); 

• means for comparing the first domain name and the second domain name (col. 
18, lines 45-63); and 

However, Geiger does not explicitly disclose: 

• means for accessing a data structure accessing a data structure to determine 
whether the first domain name is mapped to the second domain name if the first 
domain name and the second domain name do not match if the first domain name 
and the second domain name do not match. 
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Newton discloses a system, method and computer program product are provided for 
utilizing encrypter hardware with a server comprising: 

• means for accessing a data structure accessing a data structure to determine 
whether the first domain name is mapped to the second domain name if the first 
domain name and the second domain name do not match if the first domain name 
and the second domain.name do not match (paragraphs 0113-0114 and 0127-0128). 

Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Geiger by incorporating a table with a list of trusted CA 
certificates to determine which server certificates the client will accept in a timely and efficient 
manner. 

As per claim 50, Geiger discloses: 

• wherein the digital certificate is transmitted by a server on a wired network (col. 
18, lines 452-60). 
As per claim 59, Geiger discloses: 

• wherein the client is a mobile device connected to a wireless network (col. 1 3, 
lines 14-22). 

As per claim 60, Geiger discloses: 

• wherein the digital certificate is transmitted by a server on a wired network, the 
wired network coupled to the wireless network by the processing system (col. 18, 
lines 452-60). 

As per claims 14, 29, 40 and 61, Geiger discloses: 

• wherein the wired network is Internet (col. 2, lines 56-65). 
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As per claims 15 and 62, Geiger discloses: 

• wherein the server is a secure server (col. 2, lines 56-65). 
As per claims, 18, 31, 53 and 65, Geiger discloses: 

• wherein the data structure comprises at least two fields (col. 8, lines 28-45 and col. 
15, lines 18-45), 

As per claims 19, 32, 54 and 66, Geiger discloses: 

• wherein a second field of the at least two fields comprises the at least one 
alternative domain name corresponding to a domain name in a first field of the at 
least two fields (col. 8, lines 28-45 and col. 15, lines 18-45). 

As per claims 26 and 28, Geiger discloses: 

• wherein the data structure is a mapping table (col. 14, lines 46-57). 
As per claim 12, Geiger discloses: 

• wherein the client is a mobile device connected to a wireless network (col. 13, lines 
14-22). 

As per claim 13, Geiger discloses: 

• wherein the digital certificate is transmitted by a server on a wired network (col. 
18, lines 45-52). 

As per claims 20, 33, 55 and 67, Geiger further discloses: 

• searching the first field for a domain name matching the first domain name and 
searching the second field for a domain name matching the second domain name, 
the domain name from the second field corresponding to the domain name from the 
first field (col. 18, lines 45-63). 
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As per claims 16, 21, 52, 56, 64 and 68, Geiger further discloses: 

• allowing the client to access contents of the server if the first domain name and the 
second domain name match (col. 18, lines 45-63). 

As per claim 17, Geiger discloses: 

• wherein the data structure comprises at least one domain name not matching to the 
first domain name, the at least one domain name corresponds to the first domain 
name and if present in the digital certificate indicates that the digital certificate was 
transmitted by a server referenced by the first domain name (col. 18, lines 45-63). 

As per claim 22, Geiger further discloses: 

• allowing the client to access the server if the domain name from the second field 
matches the second domain name and a status of the first field and the second field 
is set to an allow status (col. 16, lines 29-41). 

As per claim 23, Geiger further discloses: 

• denying the client an access to the server if the domain name from the second filed 
does not match the second domain name (col. 16, lines 8-29). 

As per claim 24, Geiger further discloses: 

• denying the client an access to the server if a status of the first field and the second 
field is set to a deny status (col. 16, lines 8-29). 

As per claims 30 and 34, Geiger further discloses: 
• allowing the mobile device to access contents of the server if the first domain 
name and the second domain name match (col. 18, lines 45-63). 
As per claim 35, Geiger further discloses: 



Application/Control Number: 10/086,490 Page 10 

Art Unit: 2157 

• allowing the mobile device to access the server if the domain name from the 
second field matches the second domain name and a status of the first field and 
the second field is set to an allow status (col. 18, lines 45-63). 

As per claim 36, Geiger further discloses: 

• denying the mobile device an access to the server if the domain name from the 
second filed does not match the second domain name (col. 16, lines 8-29). 

As per claim 37, Geiger further discloses: 

• denying the mobile device an access to the server if a status of the first field and 
the second field is set to a deny status (col. 16, lines 8-29). 

As per claim 42, Geiger discloses an apparatus comprising: 

• a gateway coupling a wireless network to a wired network, the gateway configured 
to receive a request comprising a first domain name from a mobile device 
connected to the wireless network, the gateway further configured to transmit the 
request to a server, the server located on the wired network, the server configured 
to transmit a digital certificate comprising a second domain name to the gateway 
(col. 18, lines 45-63) 

However, Geiger does not explicitly disclose: 

• the gateway further configured to compare the first domain name and the second 
domain name and to access a mapping table accessing a data structure to 
determine whether the first domain name is mapped to the second domain name if 
the first domain name and the second domain name do not match if the first 
domain name and the second domain name do not match. 
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Newton discloses a system, method and computer program product are provided for 
utilizing encrypter hardware with a server comprising: 

• the gateway further configured to compare the first domain name and the second 
domain name and to access a mapping table accessing a data structure to determine 
whether the first domain name is mapped to the second domain name if the first 
domain name and the second domain name do not match if the first domain name 
and the second domain name do not match (paragraphs 0113-0114 and 0127-0128). 
Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Geiger by incorporating a table with a list of trusted CA 
certificates to determine which server certificates the client will accept in a timely and efficient 
manner. 

As per claim 43, Geiger discloses: 

• wherein the gateway is a proxy gateway (col. 11, lines 29-38). 
As per claim 44, Geiger discloses: 

• wherein the gateway comprises the mapping table (col. 11, lines 29-38 and col. 
14, lines 46-57). 

As per claim 45, Geiger discloses: 

• wherein the mapping table comprises at least two fields (col. 14, lines 46-57). 
As per claim 46, Geiger discloses: 

• wherein a second field of the at least two fields of the mapping table comprises at 
least one domain name corresponding to a domain name in a first field of the at 
least two fields (col 14, lines 46-57). 
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As per claim 47, Geiger discloses: 

• wherein the gateway configured to search the first field for a domain name 
matching the first domain name and the gateway further configured to search the 
second field for a domain name matching the second domain name, the- domain 
name from the second field corresponds to the domain name from the first field 
(col. 18, lines 45-63). 

As per claim 48, Geiger discloses: 

• wherein the gateway further configured to allow the mobile device to access the 
server if the domain name from the second field matches the second domain 
name (col. 18, lines 45-63). 

As per claim 51, Geiger discloses: 

• wherein the client is a mobile device connected to a. wireless network, the 
wireless network is coupled to a wired network by a gateway (col. 13, lines 14- 
22). 

As per claim 58, Geiger discloses a processing system comprising: 

• a processor (col. 2, lines 56-65 and col. 4, lines 59-65); and 

• a storage medium having stored therein instructions which, when executed by 
the processor (col. 2, lines 56-65 and col. 4, lines 59-65), cause the processing 
system to perform a method comprising: 

1, obtaining a first domain name entered by a client (col. 13, lines 14-22); 

2. retrieving a second domain name from a digital certificate (col. 13, lines 
14-22); 
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3. comparing the first domain name and the second domain name (col. 1 8, 
lines 45-63); and 
However, Geiger does not explicitly disclose: 

• accessing a data structure accessing a data structure to determine whether the first 
domain name is mapped to the second domain name if the first domain name and 
the second domain name do not match if the first domain name and the second 
domain name do not match. 

Newton discloses a system, method and computer program product are provided for 
utilizing encrypter hardware with a server comprising: 

• accessing a data structure accessing a data structure to determine whether the first 
domain name is mapped to the second domain name if the first domain name and 
the second domain name do not match if the first domain name and the second 
domain name do not match (paragraphs 0113-0114 and 0127-0128). 

Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to modify Geiger by incorporating a table with a list of trusted CA 
certificates to determine which server certificates the client will accept in a timely and efficient 
manner. 

As per claim 63, Geiger discloses: 

• wherein the processing system is a proxy gateway (col. 11, lines 29-34 and col. 
18, lines 452-60). 
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3. Claims 25, 38, 41, 57 and 69 is rejected under 35 U.S.C. 103(a) as being unpatentable 
over Geiger in view of Newton and in further view of Shuster et al (hereinafter, "Shuster", U.S. 
Pat. No. 6,687,746). 

As per claim 38, Geiger discloses the invention substantially as claims discussed above. 
However, Geiger does not explicitly disclose: 

• wherein the domain name from the second field supports wildcard characters. 
Shuster discloses a system, apparatus and method for hosting and assigning domain 

names on a wide area network including: 

• wherein the domain name from the second field supports wildcard characters (col. 
6, lines 16-24, col. 7, lines 50-67 and col. 8, lines 1-2). 

Given the teaching of Shuster, it would have been obvious to one of ordinary skill in the 
art at the time the invention was made to have incorporated the use of wildcard DNS (wildcard 
characters) in order to identify and locate the top-level and second-level portion of the requested 
domain in a timely and efficient manner. 

Response to Arguments 
3. Applicant's arguments filed July 3 1 , 2006 have been fully considered but they are not 
persuasive. 

The Office notes the following arguments: 

a. Newton does not teach the limitations of accessing a data structure to determine whether the 
first domain name is mapped to the second domain name. Neither does Geiger disclose or 
suggest this limitation. 
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In response to: 

a. Applicants argue that Newton nor Geiger teach the limitations of accessing a data structure to 
determine whether the first domain name is mapped to the second domain name. However, the 
Examiner disagrees. Newton discloses how a server authenticates a server's identity by 
determining is the distinguished name (DN) of the issuing CA matches the DN of a CA on the 
client's list of trusted CAs if not the server will not be authenticated unless the client can verify a 
certificate chain ending in a CA that is on the list (paragraphs 0112-0114 and 0127-0128). 
Applicants are reminded that 37 CFR 1 .1 1 1(b) states, A general allegation that the claims define 
a patentable invention without specifically pointing out how the language of the claims 
patentably distinguishes them from the references does not comply with the requirements of this 
section. Furthermore, for this assertion to have merit, it is important to Applicants provide some 
forms of evidence that convincingly show that Examiner's reference does not meet the claims 
language. Applicants' assertions are just mere allegation with no supported fact. Applicant is 
reminded that the examiner is entitled to the broadest reasonable interpretation of the claims. The 
Applicant always has the opportunity to amend the claims during prosecution and broad 
interpretation by the examiner reduces the possibility that the claim, once issued, will be 
interpreted more broadly than is justified. In re Prater 162 USPQ 541, 550-51 (CCPA 1969). 
Hence, for the above reasons, it is believed that the rejection under 35 U.S.C. 103 provides 
substantial evidence to support the rationale statement in the above rejection. The rejection under 
35 U.S.C. 103 should be sustained. 



Application/Control Number: 10/086,490 m Page 16 

Art Unit: 2157 

Conclusion 

4. Applicant's amendment necessitated the new ground(s) of rejection presented in this 
Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). 
Applicant is reminded of the extension of time policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the date of this 
final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to LaShonda T. Jacobs whose telephone number is 571-272-4004. 
The examiner can normally be reached on 8:30 A.M. -5:00 P.M.. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ario Etienne can be reached on 571-272-4001 . The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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